Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/pwnh5FpqUfIUPFFj-frnOhzqOlI.roa
File: pwnh5FpqUfIUPFFj-frnOhzqOlI.roa (raw, json)
Hash identifier: aj8mihJjKldCYyb6vdmT0MKpWxIl8DM3h6DJWebtMu0=
Subject key identifier: A7:09:E1:E4:5A:6A:51:F2:14:3C:51:63:F9:FA:E7:3A:1C:EA:3A:52
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A6C18FE7460744BF58A072B996ECC0ED3
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/pwnh5FpqUfIUPFFj-frnOhzqOlI.roa
Signing time: Wed 06 Sep 2023 20:04:51 +0000
ROA not before: Wed 06 Sep 2023 20:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23470
IP address blocks: 185.228.75.0/24 maxlen: 24
45.8.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Nov 2023 16:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6c:18:fe:74:60:74:4b:f5:8a:07:2b:99:6e:cc:0e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 6 20:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a709e1e45a6a51f2143c5163f9fae73a1cea3a52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:9c:fd:f9:f1:e9:6e:cb:76:7b:96:a8:39:1c:
cf:bc:96:d6:c3:45:35:64:06:1b:a0:a8:68:03:37:
f4:77:f5:5c:0e:69:bb:06:bb:51:e5:01:19:71:ee:
da:ba:ef:2c:14:63:47:c3:55:6c:b7:5f:58:ef:72:
c3:ad:9e:6b:2b:8b:83:f3:b9:11:a7:28:27:89:e8:
f6:af:dd:94:e6:21:4b:a2:d6:a9:12:a1:61:9d:76:
63:4e:28:b6:91:45:60:42:e3:a1:d4:62:ef:ae:2e:
6d:67:aa:33:56:e0:b3:e5:8c:44:b5:8e:b3:c7:42:
d3:d1:47:23:bc:46:0a:e8:fc:8c:30:ee:d0:a3:5b:
49:6f:74:65:c3:5d:14:b7:48:66:8f:56:bd:71:a4:
21:2b:bf:24:fa:a5:56:cd:8c:cd:09:c6:3f:30:15:
88:6e:d5:6d:11:fe:8d:d7:f8:fe:13:a3:a3:a7:74:
cf:e6:87:82:f4:73:db:22:ae:0b:e8:dc:bf:01:02:
e1:c7:0c:ae:37:1b:af:16:3a:2d:fd:7b:63:6d:e3:
2b:96:d5:49:d1:ee:49:34:7b:b6:d8:84:e9:ae:b5:
7e:a4:48:bb:c5:6f:64:29:3e:e7:46:9b:ad:9c:75:
2c:12:db:1c:85:b2:d8:7e:f1:6f:d9:38:4e:ce:6d:
5a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:09:E1:E4:5A:6A:51:F2:14:3C:51:63:F9:FA:E7:3A:1C:EA:3A:52
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/pwnh5FpqUfIUPFFj-frnOhzqOlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.22.0/24
185.228.75.0/24
Signature Algorithm: sha256WithRSAEncryption
38:5e:36:82:be:de:6a:f7:31:2e:50:c9:41:d3:46:c9:03:2e:
8e:bf:26:b8:c5:f7:f4:a4:fa:78:4e:69:55:b5:98:7b:98:c0:
c7:dd:15:e6:79:ba:41:10:67:d7:5a:a4:47:a8:3e:d5:c2:8f:
bb:66:25:69:07:5d:4f:d3:dd:53:18:90:bc:62:7a:02:de:4b:
47:c1:ec:fa:55:82:3d:60:06:7a:6b:e4:57:d5:bb:13:44:5c:
66:7a:4e:79:04:02:d7:8c:24:88:65:0e:66:5e:63:4f:ce:e4:
84:a5:5d:e9:d7:22:26:2f:54:c2:87:45:bb:0c:c1:bd:26:d8:
78:4c:29:b5:4d:23:fb:ae:ac:78:60:53:e4:55:a8:56:27:4b:
a4:74:58:c0:82:6d:5b:d5:5a:80:59:de:e2:cf:45:eb:84:db:
bb:45:1e:d9:69:01:d4:66:f3:f5:0a:c3:01:79:64:97:a7:8f:
d2:2e:ae:a6:ac:1a:1f:a8:c9:1f:31:78:a6:e3:eb:ce:2f:e4:
52:ae:d8:0d:55:4b:61:b6:04:38:a2:41:eb:3c:81:e9:8d:bb:
c9:01:9d:0c:e3:b0:c1:7d:7f:69:ed:47:a9:cb:57:17:d8:94:
bd:09:55:dc:4c:9d:4c:88:d9:33:55:a2:fc:03:4f:e6:38:39:
f6:04:67:cf
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYpsGP50YHRL9YoHK5luzA7TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwOTA2MjAwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNzA5ZTFlNDVhNmE1MWYyMTQzYzUxNjNmOWZhZTczYTFjZWEzYTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjJz9+fHpbst2e5aoORzPvJbWw0U1
ZAYboKhoAzf0d/VcDmm7BrtR5QEZce7auu8sFGNHw1Vst19Y73LDrZ5rK4uD87kR
pygniej2r92U5iFLotapEqFhnXZjTii2kUVgQuOh1GLvri5tZ6ozVuCz5YxEtY6z
x0LT0UcjvEYK6PyMMO7Qo1tJb3Rlw10Ut0hmj1a9caQhK78k+qVWzYzNCcY/MBWI
btVtEf6N1/j+E6Ojp3TP5oeC9HPbIq4L6Ny/AQLhxwyuNxuvFjot/XtjbeMrltVJ
0e5JNHu22ITprrV+pEi7xW9kKT7nRputnHUsEtschbLYfvFv2ThOzm1agQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKcJ4eRaalHyFDxRY/n65zoc6jpSMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvcHduaDVGcHFVZklVUEZGai1mcm5PaHpxT2xJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALQgWAwQA
ueRLMA0GCSqGSIb3DQEBCwUAA4IBAQA4XjaCvt5q9zEuUMlB00bJAy6Ovya4xff0
pPp4TmlVtZh7mMDH3RXmebpBEGfXWqRHqD7Vwo+7ZiVpB11P091TGJC8YnoC3ktH
wez6VYI9YAZ6a+RX1bsTRFxmek55BALXjCSIZQ5mXmNPzuSEpV3p1yImL1TCh0W7
DMG9Jth4TCm1TSP7rqx4YFPkVahWJ0ukdFjAgm1b1VqAWd7iz0XrhNu7RR7ZaQHU
ZvP1CsMBeWSXp4/SLq6mrBofqMkfMXim4+vOL+RSrtgNVUthtgQ4okHrPIHpjbvJ
AZ0M47DBfX9p7Uepy1cX2JS9CVXcTJ1MiNkzVaL8A0/mODn2BGfP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org